Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web applications vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-0086
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web App...
Microsoft Word Viewer
Microsoft Office Compatibility Pack
Microsoft Office 2010
Microsoft Word 2010
Microsoft Sharepoint Server 2013
Microsoft Web Applications 2010
Microsoft Word 2013
Microsoft Office Web Apps Server 2013
Microsoft Word 2007
Microsoft Sharepoint Server 2010
9.3
CVSSv2
CVE-2015-0064
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Automation Services in SharePoint Server 2010, Web Applications 2010 SP2, Word Viewer, and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code or cause a denial of service (memory corru...
Microsoft Web Applications 2010
Microsoft Office Compatibility Pack
Microsoft Word Automation Services -
Microsoft Word 2010
Microsoft Word 2007
Microsoft Word Viewer
Microsoft Office 2010
Microsoft Sharepoint Server 2010
1 EDB exploit
4.3
CVSSv2
CVE-2018-15169
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote malicious users to inject arbitrary web script or HTML via the /deleteMO.do method parameter.
Zohocorp Manageengine Applications Manager
4.3
CVSSv2
CVE-2018-12996
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager prior to 13 (Build 13800) allows remote malicious users to inject arbitrary web script or HTML via the parameter 'method' to GraphicalView.do.
Zohocorp Manageengine Applications Manager
4.3
CVSSv2
CVE-2008-0474
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 8.1 build 8100 allow remote malicious users to inject arbitrary web script or HTML via the (1) showlink parameter to jsp/DiscoveryProfiles.jsp; the (2) attributeIDs, (3) attributeToSelect, (4...
Manageengine Applications Manager 8.1 Build 8100
1 EDB exploit
3.5
CVSSv2
CVE-2021-20368
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications
3.5
CVSSv2
CVE-2021-20366
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications
3.5
CVSSv2
CVE-2021-20362
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications 4.3
3.5
CVSSv2
CVE-2021-20363
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications 4.3
3.5
CVSSv2
CVE-2021-20364
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications 4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »